npm - @valentine-efagene/qshelter-common - Versions diffs - 2.0.132 → 2.0.135 - Mend

@valentine-efagene/qshelter-common 2.0.132 → 2.0.135

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/src/middleware/request-logger.d.ts +2 -0
package/dist/src/middleware/request-logger.js +18 -0
package/dist/src/middleware/tenant.d.ts +13 -1
package/dist/src/middleware/tenant.js +4 -1
package/package.json +1 -1

package/dist/src/middleware/request-logger.d.ts CHANGED Viewed

@@ -2,5 +2,7 @@ import { Request, Response, NextFunction } from 'express';
 /**
  * Request logging middleware that logs method, path, status code, and duration.
  * Logs in JSON format for easy parsing by log aggregation tools.
+ *
+ * In debug mode, also logs the authorizer context from API Gateway.
  */
 export declare function requestLogger(req: Request, res: Response, next: NextFunction): void;

package/dist/src/middleware/request-logger.js CHANGED Viewed

@@ -1,9 +1,27 @@
 /**
  * Request logging middleware that logs method, path, status code, and duration.
  * Logs in JSON format for easy parsing by log aggregation tools.
+ *
+ * In debug mode, also logs the authorizer context from API Gateway.
  */
 export function requestLogger(req, res, next) {
     const start = Date.now();
+    // Debug: Log authorizer context structure
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    const lambdaReq = req;
+    const authorizer = lambdaReq.apiGateway?.event?.requestContext?.authorizer;
+    if (process.env.DEBUG_AUTH === 'true' || process.env.NODE_ENV !== 'production') {
+        console.log(JSON.stringify({
+            type: 'auth_debug',
+            path: req.path,
+            hasApiGateway: !!lambdaReq.apiGateway,
+            hasEvent: !!lambdaReq.apiGateway?.event,
+            hasRequestContext: !!lambdaReq.apiGateway?.event?.requestContext,
+            hasAuthorizer: !!authorizer,
+            authorizerKeys: authorizer ? Object.keys(authorizer) : [],
+            authorizer: authorizer,
+        }));
+    }
     res.on('finish', () => {
         const duration = Date.now() - start;
         console.log(JSON.stringify({

package/dist/src/middleware/tenant.d.ts CHANGED Viewed

@@ -10,7 +10,13 @@ declare global {
             tenantContext?: TenantContext;
             tenantPrisma?: TenantPrismaClient | PrismaClient;
             /**
-             * API Gateway context added by serverless-express
+             * API Gateway context added by serverless-express.
+             *
+             * With HTTP API v2 and enableSimpleResponses=true, context is under:
+             *   authorizer.lambda.{field}
+             *
+             * With REST API or enableSimpleResponses=false, context is under:
+             *   authorizer.{field}
              */
             apiGateway?: {
                 event: {
@@ -20,6 +26,12 @@ declare global {
                             email?: string;
                             roles?: string;
                             tenantId?: string;
+                            lambda?: {
+                                userId?: string;
+                                email?: string;
+                                roles?: string;
+                                tenantId?: string;
+                            };
                         };
                     };
                 };

package/dist/src/middleware/tenant.js CHANGED Viewed

@@ -21,7 +21,10 @@ export function createTenantMiddleware(options) {
     return function tenantMiddleware(req, res, next) {
         try {
             // 1. Try Lambda authorizer context first (production)
-            const authorizerContext = req.apiGateway?.event?.requestContext?.authorizer;
+            // HTTP API v2 with enableSimpleResponses=true nests context under authorizer.lambda
+            const authorizer = req.apiGateway?.event?.requestContext?.authorizer;
+            const lambdaContext = authorizer?.lambda;
+            const authorizerContext = lambdaContext || authorizer;
             // 2. Fall back to x-authorizer-* headers (test/development)
             const headers = req.headers;
             const tenantId = authorizerContext?.tenantId || headers['x-authorizer-tenant-id'];

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@valentine-efagene/qshelter-common",
-  "version": "2.0.132",
+  "version": "2.0.135",
   "description": "Shared database schemas and utilities for QShelter services",
   "main": "dist/src/index.js",
   "types": "dist/src/index.d.ts",